Exploitdb Exploits
31,351 exploits tracked across all sources.
Plunet BusinessManager <4.1 - Auth Bypass
Plunet BusinessManager 4.1 and earlier allows remote authenticated users to bypass access restrictions and (1) read sensitive Customer or Order data via a modified Pfad parameter to pagesUTF8/Sys_DirAnzeige.jsp, or (2) list sensitive Jobs via a direct request to pagesUTF8/auftrag_job.jsp.
by Matteo Ignaccolo
Plunet BusinessManager < 4.1 - Authenticated Cross-Site Scripting via QUB or Bez74 Parameters
Cross-site scripting (XSS) vulnerability in pagesUTF8/auftrag_allgemeinauftrag.jsp in Plunet BusinessManager 4.1 and earlier allows remote authenticated users to inject arbitrary web script or HTML via the (1) QUB and (2) Bez74 parameters.
by Matteo Ignaccolo
EZpack 4.2b2 - SQL Injection via qType Parameter
SQL injection vulnerability in index.php in EZpack 4.2b2 allows remote attackers to execute arbitrary SQL commands via the qType parameter in a webboard prog action.
by !-BUGJACK-!
playSMS 0.9.3 - Path Traversal via Gateway Module or Themes Module Parameter
Multiple directory traversal vulnerabilities in playSMS 0.9.3 allow remote attackers to include and execute arbitrary local files via directory traversal sequences in the (1) gateway_module parameter to plugin/gateway/gnokii/init.php and the (2) themes_module parameter to plugin/themes/default/init.php.
by ahmadbady
riotpix < 0.61 - SQL Injection via Username Parameter
SQL injection vulnerability in index.php in RiotPix 0.61 and earlier allows remote attackers to execute arbitrary SQL commands via the username parameter. NOTE: some of these details are obtained from third party information.
by ZoRLu
PollHelper - Unauthenticated Arbitrary File Download via Direct Request
PollHelper stores poll.inc under the web root with insufficient access control, which allows remote attackers to download the database file containing user credentials via a direct request.
by ahmadbady
playSMS 0.9.3 - Remote Code Execution via PHP File Inclusion
Multiple PHP remote file inclusion vulnerabilities in playSMS 0.9.3 allow remote attackers to execute arbitrary PHP code via a URL in the (1) apps_path[plug] parameter to plugin/gateway/gnokii/init.php, the (2) apps_path[themes] parameter to plugin/themes/default/init.php, and the (3) apps_path[libs] parameter to lib/function.php.
by ahmadbady
PHPAuctionSystem - Multiple Remote File Inclusions
by darkmasking
IT!CMS < 0.21-alpha - SQL Injection via Username Parameter
SQL injection vulnerability in login.php in IT!CMS 2.1a and earlier allows remote attackers to execute arbitrary SQL commands via the Username.
by certaindeath
EZpack 4.2b2 - Cross-Site Scripting via mdfd Parameter in index.php
Cross-site scripting (XSS) vulnerability in index.php in EZpack 4.2b2 allows remote attackers to inject arbitrary web script or HTML via the mdfd parameter in a prog action.
by !-BUGJACK-!
BlogHelper - Unauthenticated Database File Download via Direct Request
BlogHelper stores common_db.inc under the web root with insufficient access control, which allows remote attackers to download the database file containing user credentials via a direct request.
by ahmadbady
Oracle Database <11.1.0.6 - Info Disclosure
Unspecified vulnerability in the Workspace Manager component in Oracle Database 9.2.0.8, 9.2.0.8DV, 10.1.0.5, 10.2.0.3, and 11.1.0.6 allows remote authenticated users to affect confidentiality and integrity, related to SYS.LT and WMSYS.LT, a different vulnerability than CVE-2008-3982 and CVE-2008-3983.
by sh2kerr
Oracle Database <11.1.0.6 - Info Disclosure
Unspecified vulnerability in the Workspace Manager component in Oracle Database 9.2.0.8, 9.2.0.8DV, 10.1.0.5, 10.2.0.3, and 11.1.0.6 allows remote authenticated users to affect confidentiality and integrity, related to SYS.LT and WMSYS.LT, a different vulnerability than CVE-2008-3982 and CVE-2008-3984.
by sh2kerr
Oracle 10g - 'SYS.LT.COMPRESSWORKSPACETREE' SQL Injection (1)
by sh2kerr
Debian XTERM - 'DECRQSS/comments' Code Execution
by Paul Szabo
phpauctions - SQL Injection via profile.php user_id Parameter
SQL injection vulnerability in profile.php in PHPAuctions (aka PHPAuctionSystem) allows remote attackers to execute arbitrary SQL commands via the user_id parameter.
by x0r
Google Chrome 1.0.154.36 - FTP Client PASV Port Scan Information Disclosure
by Aditya K Sood
PHPAuctions - Unauthenticated Authentication Bypass via Cookie Manipulation
PHPAuctions (aka PHPAuctionSystem) allows remote attackers to bypass authentication and gain administrative access via modified (1) PHPAUCTION_RM_ID, (2) PHPAUCTION_RM_NAME, (3) PHPAUCTION_RM_USERNAME, and (4) PHPAUCTION_RM_EMAIL cookies.
by ZoRLu
phpauctions - Cross-Site Scripting via profile.php user_id Parameter
Cross-site scripting (XSS) vulnerability in profile.php in PHPAuctions (aka PHPAuctionSystem) allows remote attackers to inject arbitrary web script or HTML via the user_id parameter.
by x0r
Joomla! Component simple_review 1.x - SQL Injection
by EcHoLL
Ayemsis Emlak Pro - 'acc.mdb' Database Disclosure
by ByALBAYX
WSN Guest 1.23 - SQL Injection via Search Parameter
SQL injection vulnerability in search.php in WSN Guest 1.23 allows remote attackers to execute arbitrary SQL commands via the search parameter in an advanced action.
by DaiMon
By Source